Download

This presentation discusses the motivation for creating OpenSAMM, and then leads into discussion of the structure of the framework. This is followed by a quick tour of the framework in terms of applying the model, and then closes with a little about the ongoing project and goals.

This presentation was created by Zate Berg to present at the OWASP Tampa Chapter Meeting in May 2009. It is a good deck for diving into the high-level structure of each of the areas within the framework.

Amongst many features, Vulnerability Manager allows people to track SAMM practices used by different application development teams, store these assessments over time, and build out roadmaps for improvement.

A collection of the badge graphics (business functions, security practices, and all the levels) exported as transparent PNG files. Useful for building your own docs in the same style as the SAMM document.